Nixpkgs security tracker

Login with GitHub

Suggestion detail

Dismissed

Permalink CVE-2025-58932

8.2 HIGH

CVSS version (CVSS): 3.1
Attack Vector (AV): Network (N)
Attack Complexity (AC): Low (L)
Privileges Required (PR): None (N)
User Interaction (UI): None (N)
Scope (S): Unchanged (U)
Confidentiality (C): High (H)
Integrity (I): Low (L)
Availability (A): None (N)
Modified Attack Vector (MAV): Network (N)
Modified Attack Complexity (MAC): Low (L)
Modified Privileges Required (MPR): None (N)
Modified User Interaction (MUI): None (N)
Modified Confidentiality (MC): High (H)
Modified Scope (MS): Unchanged (U)
Modified Integrity (MI): Low (L)
Modified Availability (MA): None (N)

updated 4 months ago by @LeSuisse Activity log

Created suggestion 4 months ago
@LeSuisse ignored
11 packages
- prisma
- prisma-engines
- prisma-language-server
- python312Packages.prisma
- python313Packages.prisma
- typstPackages.prismath_0_1_0
- vscode-extensions.prisma.prisma
- tree-sitter-grammars.tree-sitter-prisma
- vimPlugins.nvim-treesitter-parsers.prisma
- python312Packages.tree-sitter-grammars.tree-sitter-prisma
- python313Packages.tree-sitter-grammars.tree-sitter-prisma
4 months ago
@LeSuisse dismissed 4 months ago

WordPress Prisma theme <= 1.10 - Local File Inclusion vulnerability

Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in axiomthemes Prisma prisma allows PHP Local File Inclusion.This issue affects Prisma: from n/a through <= 1.10.

References

Affected products

prisma

=<<= 1.10

Ignored packages (11)

pkgs.prisma

Next-generation ORM for Node.js and TypeScript

nixos-unstable 6.18.0
- nixpkgs-unstable 6.18.0
- nixos-unstable-small 6.18.0

pkgs.prisma-engines

Collection of engines that power the core stack for Prisma

nixos-unstable 6.18.0
- nixpkgs-unstable 6.18.0
- nixos-unstable-small 6.18.0

pkgs.prisma-language-server

Language server for Prisma

nixos-unstable 6.19.0
- nixpkgs-unstable 6.19.0
- nixos-unstable-small 6.19.0

pkgs.python312Packages.prisma

Auto-generated and fully type-safe database client for prisma

nixos-unstable 0.15.0
- nixpkgs-unstable 0.15.0
- nixos-unstable-small 0.15.0

pkgs.python313Packages.prisma

Auto-generated and fully type-safe database client for prisma

nixos-unstable 0.15.0
- nixpkgs-unstable 0.15.0
- nixos-unstable-small 0.15.0

pkgs.typstPackages.prismath_0_1_0

A mathematical brackets colorizer

nixos-unstable 0.1.0
- nixpkgs-unstable 0.1.0
- nixos-unstable-small 0.1.0

pkgs.vscode-extensions.prisma.prisma

VSCode extension for syntax highlighting, formatting, auto-completion, jump-to-definition and linting for .prisma files

nixos-unstable 7.0.0
- nixpkgs-unstable 7.0.0
- nixos-unstable-small 7.0.0

pkgs.tree-sitter-grammars.tree-sitter-prisma

None

nixos-unstable 0.25.10
- nixpkgs-unstable 0.25.10
- nixos-unstable-small 0.25.10

pkgs.vimPlugins.nvim-treesitter-parsers.prisma

None

nixos-unstable -
- nixpkgs-unstable
- nixos-unstable-small

pkgs.python312Packages.tree-sitter-grammars.tree-sitter-prisma

Python bindings for tree-sitter-prisma

nixos-unstable 0.25.10
- nixpkgs-unstable 0.25.10
- nixos-unstable-small 0.25.10

pkgs.python313Packages.tree-sitter-grammars.tree-sitter-prisma

Python bindings for tree-sitter-prisma

nixos-unstable 0.25.10
- nixpkgs-unstable 0.25.10
- nixos-unstable-small 0.25.10

WP theme not present in nixpkgs